Lucene search
K

6 matches found

Positive Technologies
Positive Technologies
added 2026/05/21 12:0 a.m.9 views

PT-2026-42405

Name of the Vulnerable Software and Affected Versions Netatalk versions 3.1.0 through 4.4.2 Description An SQL injection in the MySQL CNID backend allows a remote authenticated attacker to obtain unauthorized access to data, modify data, or cause a denial of service. SQL injection is a type of fl...

9.9CVSS5.9AI score0.00477EPSS
Exploits0References22
Github Security Blog
Github Security Blog
added 2026/05/04 6:32 a.m.11 views

GoBGP has an Improper Resource Shutdown or Release

A vulnerability has been found in osrg GoBGP up to 4.3.0. This impacts the function SRv6L3ServiceAttribute.DecodeFromBytes of the file pkg/packet/bgp/prefixsid.go of the component SRv6 L3 Service. Such manipulation of the argument data leads to denial of service. The attack may be performed from...

7.5CVSS5.5AI score0.00464EPSS
Exploits0References8Affected Software1
EUVD
EUVD
added 2026/05/04 5:30 a.m.9 views

EUVD-2026-26916

A vulnerability was determined in osrg GoBGP up to 4.3.0. Affected by this vulnerability is the function parseRibEntry of the file pkg/packet/mrt/mrt.go. Executing a manipulation can lead to integer underflow. It is possible to launch the attack remotely. Upgrading to version 4.4.0 addresses this...

7.5CVSS6.9AI score0.00454EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/05/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-7735

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in osrg GoBGP up to 4.3.0. Affected is the function PathAttributeAigp.DecodeFromBytes of the file pkg/packet/bgp/bgp.go of the compone...

7.5CVSS7.1AI score0.00361EPSS
Exploits0References3
NVD
NVD
added 2026/04/24 1:16 a.m.4 views

CVE-2026-31955

Xibo is an open source digital signage platform with a web content management system and Windows display player software. An authenticated Server-Side Request Forgery SSRF vulnerability in versions prior to 4.4.1 allows users with DataSet permissions to make arbitrary HTTP requests from the CMS...

4.9CVSS0.00282EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/01/01 12:0 a.m.7 views

PT-2023-14636 · Perfsonar · Perfsonar

Name of the Vulnerable Software and Affected Versions: perfSONAR versions prior to 4.4.6 Description: The issue inadvertently supports the parse option for a file:// URL. Recommendations: For versions prior to 4.4.6, update to version 4.4.6 or later to resolve the issue...

5.3CVSS7.2AI score0.00634EPSS
Exploits1References7
Rows per page
Query Builder